mirror of
git://git.gnupg.org/gnupg.git
synced 2024-12-21 10:09:57 +01:00
17b766b0a3
* tools/gpgconf.c (query_swdb): Parse the new minver tag.
1843 lines
52 KiB
C
1843 lines
52 KiB
C
/* gpgconf.c - Configuration utility for GnuPG
|
|
* Copyright (C) 2003, 2007, 2009, 2011 Free Software Foundation, Inc.
|
|
* Copyright (C) 2016 g10 Code GmbH.
|
|
*
|
|
* This file is part of GnuPG.
|
|
*
|
|
* GnuPG is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* GnuPG is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, see <https://www.gnu.org/licenses/>.
|
|
* SPDX-License-Identifier: GPL-3.0-or-later
|
|
*/
|
|
|
|
#include <config.h>
|
|
|
|
#include <errno.h>
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <unistd.h>
|
|
|
|
#define INCLUDED_BY_MAIN_MODULE 1
|
|
#include "gpgconf.h"
|
|
#include "../common/i18n.h"
|
|
#include "../common/sysutils.h"
|
|
#include "../common/init.h"
|
|
#include "../common/status.h"
|
|
#include "../common/dotlock.h"
|
|
|
|
#ifdef HAVE_W32_SYSTEM
|
|
#include <windows.h>
|
|
#endif
|
|
|
|
/* Constants to identify the commands and options. */
|
|
enum cmd_and_opt_values
|
|
{
|
|
aNull = 0,
|
|
oDryRun = 'n',
|
|
oOutput = 'o',
|
|
oQuiet = 'q',
|
|
oVerbose = 'v',
|
|
oRuntime = 'r',
|
|
oComponent = 'c',
|
|
oNull = '0',
|
|
aListDirs = 'L',
|
|
aKill = 'K',
|
|
aReload = 'R',
|
|
aShowVersions = 'V',
|
|
aShowConfigs = 'X',
|
|
|
|
oNoVerbose = 500,
|
|
oHomedir,
|
|
oBuilddir,
|
|
oStatusFD,
|
|
oShowSocket,
|
|
oChUid,
|
|
|
|
aListComponents,
|
|
aCheckPrograms,
|
|
aListOptions,
|
|
aChangeOptions,
|
|
aCheckOptions,
|
|
aApplyDefaults,
|
|
aListConfig,
|
|
aCheckConfig,
|
|
aQuerySWDB,
|
|
aLaunch,
|
|
aCreateSocketDir,
|
|
aRemoveSocketDir,
|
|
aApplyProfile,
|
|
aShowCodepages,
|
|
aDotlockLock,
|
|
aDotlockUnlock
|
|
};
|
|
|
|
|
|
/* The list of commands and options. */
|
|
static gpgrt_opt_t opts[] =
|
|
{
|
|
ARGPARSE_group (300, N_("@Commands:\n ")),
|
|
|
|
ARGPARSE_c (aListComponents, "list-components", N_("list all components")),
|
|
ARGPARSE_c (aCheckPrograms, "check-programs", N_("check all programs")),
|
|
ARGPARSE_c (aListOptions, "list-options", N_("|COMPONENT|list options")),
|
|
ARGPARSE_c (aChangeOptions, "change-options",
|
|
N_("|COMPONENT|change options")),
|
|
ARGPARSE_c (aCheckOptions, "check-options", N_("|COMPONENT|check options")),
|
|
ARGPARSE_c (aApplyDefaults, "apply-defaults",
|
|
N_("apply global default values")),
|
|
ARGPARSE_c (aApplyProfile, "apply-profile",
|
|
N_("|FILE|update configuration files using FILE")),
|
|
ARGPARSE_c (aListDirs, "list-dirs",
|
|
N_("get the configuration directories for @GPGCONF@")),
|
|
ARGPARSE_c (aListConfig, "list-config",
|
|
N_("list global configuration file")),
|
|
ARGPARSE_c (aCheckConfig, "check-config",
|
|
N_("check global configuration file")),
|
|
ARGPARSE_c (aQuerySWDB, "query-swdb",
|
|
N_("query the software version database")),
|
|
ARGPARSE_c (aReload, "reload", N_("reload all or a given component")),
|
|
ARGPARSE_c (aLaunch, "launch", N_("launch a given component")),
|
|
ARGPARSE_c (aKill, "kill", N_("kill a given component")),
|
|
ARGPARSE_c (aCreateSocketDir, "create-socketdir", "@"),
|
|
ARGPARSE_c (aRemoveSocketDir, "remove-socketdir", "@"),
|
|
ARGPARSE_c (aShowVersions, "show-versions", ""),
|
|
ARGPARSE_c (aShowConfigs, "show-configs", ""),
|
|
/* hidden commands: for debugging */
|
|
ARGPARSE_c (aShowCodepages, "show-codepages", "@"),
|
|
ARGPARSE_c (aDotlockLock, "lock", "@"),
|
|
ARGPARSE_c (aDotlockUnlock, "unlock", "@"),
|
|
|
|
ARGPARSE_header (NULL, N_("@\nOptions:\n ")),
|
|
|
|
ARGPARSE_s_s (oOutput, "output", N_("use as output file")),
|
|
ARGPARSE_s_n (oVerbose, "verbose", N_("verbose")),
|
|
ARGPARSE_s_n (oQuiet, "quiet", N_("quiet")),
|
|
ARGPARSE_s_n (oDryRun, "dry-run", N_("do not make any changes")),
|
|
ARGPARSE_s_n (oRuntime, "runtime",
|
|
N_("activate changes at runtime, if possible")),
|
|
ARGPARSE_s_i (oStatusFD, "status-fd",
|
|
N_("|FD|write status info to this FD")),
|
|
/* hidden options */
|
|
ARGPARSE_s_s (oHomedir, "homedir", "@"),
|
|
ARGPARSE_s_s (oBuilddir, "build-prefix", "@"),
|
|
ARGPARSE_s_n (oNull, "null", "@"),
|
|
ARGPARSE_s_n (oNoVerbose, "no-verbose", "@"),
|
|
ARGPARSE_s_n (oShowSocket, "show-socket", "@"),
|
|
ARGPARSE_s_s (oChUid, "chuid", "@"),
|
|
|
|
ARGPARSE_end ()
|
|
};
|
|
|
|
|
|
|
|
#define CUTLINE_FMT \
|
|
"--8<---------------cut here---------------%s------------->8---\n"
|
|
|
|
|
|
/* The stream to output the status information. Status Output is disabled if
|
|
* this is NULL. */
|
|
static estream_t statusfp;
|
|
|
|
static void show_versions (estream_t fp);
|
|
static void show_configs (estream_t fp);
|
|
|
|
|
|
|
|
/* Print usage information and provide strings for help. */
|
|
static const char *
|
|
my_strusage( int level )
|
|
{
|
|
const char *p;
|
|
|
|
switch (level)
|
|
{
|
|
case 9: p = "GPL-3.0-or-later"; break;
|
|
case 11: p = "@GPGCONF@ (@GNUPG@)";
|
|
break;
|
|
case 13: p = VERSION; break;
|
|
case 14: p = GNUPG_DEF_COPYRIGHT_LINE; break;
|
|
case 17: p = PRINTABLE_OS_NAME; break;
|
|
case 19: p = _("Please report bugs to <@EMAIL@>.\n"); break;
|
|
|
|
case 1:
|
|
case 40: p = _("Usage: @GPGCONF@ [options] (-h for help)");
|
|
break;
|
|
case 41:
|
|
p = _("Syntax: @GPGCONF@ [options]\n"
|
|
"Manage configuration options for tools of the @GNUPG@ system\n");
|
|
break;
|
|
|
|
default: p = NULL; break;
|
|
}
|
|
return p;
|
|
}
|
|
|
|
|
|
/* Return the fp for the output. This is usually stdout unless
|
|
--output has been used. In the latter case this function opens
|
|
that file. */
|
|
static estream_t
|
|
get_outfp (estream_t *fp)
|
|
{
|
|
if (!*fp)
|
|
{
|
|
if (opt.outfile)
|
|
{
|
|
*fp = es_fopen (opt.outfile, "w");
|
|
if (!*fp)
|
|
gc_error (1, errno, "can not open '%s'", opt.outfile);
|
|
}
|
|
else
|
|
*fp = es_stdout;
|
|
}
|
|
return *fp;
|
|
}
|
|
|
|
|
|
/* Set the status FD. */
|
|
static void
|
|
set_status_fd (int fd)
|
|
{
|
|
static int last_fd = -1;
|
|
|
|
if (fd != -1 && last_fd == fd)
|
|
return;
|
|
|
|
if (statusfp && statusfp != es_stdout && statusfp != es_stderr)
|
|
es_fclose (statusfp);
|
|
statusfp = NULL;
|
|
if (fd == -1)
|
|
return;
|
|
|
|
if (fd == 1)
|
|
statusfp = es_stdout;
|
|
else if (fd == 2)
|
|
statusfp = es_stderr;
|
|
else
|
|
statusfp = es_fdopen (fd, "w");
|
|
if (!statusfp)
|
|
{
|
|
log_fatal ("can't open fd %d for status output: %s\n",
|
|
fd, gpg_strerror (gpg_error_from_syserror ()));
|
|
}
|
|
last_fd = fd;
|
|
}
|
|
|
|
|
|
/* Write a status line with code NO followed by the output of the
|
|
* printf style FORMAT. The caller needs to make sure that LFs and
|
|
* CRs are not printed. */
|
|
void
|
|
gpgconf_write_status (int no, const char *format, ...)
|
|
{
|
|
va_list arg_ptr;
|
|
|
|
if (!statusfp)
|
|
return; /* Not enabled. */
|
|
|
|
es_fputs ("[GNUPG:] ", statusfp);
|
|
es_fputs (get_status_string (no), statusfp);
|
|
if (format)
|
|
{
|
|
es_putc (' ', statusfp);
|
|
va_start (arg_ptr, format);
|
|
es_vfprintf (statusfp, format, arg_ptr);
|
|
va_end (arg_ptr);
|
|
}
|
|
es_putc ('\n', statusfp);
|
|
}
|
|
|
|
|
|
static void
|
|
list_dirs (estream_t fp, char **names, int show_config_mode)
|
|
{
|
|
static struct {
|
|
const char *name; /* If NULL only a file check will be done. */
|
|
const char *(*fnc)(void);
|
|
const char *extra;
|
|
} list[] = {
|
|
{ "sysconfdir", gnupg_sysconfdir, NULL },
|
|
{ "bindir", gnupg_bindir, NULL },
|
|
{ "libexecdir", gnupg_libexecdir, NULL },
|
|
{ "libdir", gnupg_libdir, NULL },
|
|
{ "datadir", gnupg_datadir, NULL },
|
|
{ "localedir", gnupg_localedir, NULL },
|
|
{ "socketdir", gnupg_socketdir, NULL },
|
|
{ "dirmngr-socket", dirmngr_socket_name, NULL,},
|
|
{ "keyboxd-socket", keyboxd_socket_name, NULL,},
|
|
{ "agent-ssh-socket", gnupg_socketdir, GPG_AGENT_SSH_SOCK_NAME },
|
|
{ "agent-extra-socket", gnupg_socketdir, GPG_AGENT_EXTRA_SOCK_NAME },
|
|
{ "agent-browser-socket",gnupg_socketdir, GPG_AGENT_BROWSER_SOCK_NAME },
|
|
{ "agent-socket", gnupg_socketdir, GPG_AGENT_SOCK_NAME },
|
|
{ NULL, gnupg_socketdir, "S.uiserver" },
|
|
{ "homedir", gnupg_homedir, NULL }
|
|
};
|
|
int idx, j;
|
|
char *tmp;
|
|
const char *s;
|
|
gpg_error_t err;
|
|
|
|
if (show_config_mode)
|
|
es_fprintf (fp, "#+begin_example\n");
|
|
for (idx = 0; idx < DIM (list); idx++)
|
|
{
|
|
s = list[idx].fnc ();
|
|
if (list[idx].extra)
|
|
{
|
|
tmp = make_filename (s, list[idx].extra, NULL);
|
|
s = tmp;
|
|
}
|
|
else
|
|
tmp = NULL;
|
|
|
|
if (!list[idx].name)
|
|
;
|
|
else if (!names)
|
|
es_fprintf (fp, "%s%s:%s\n", show_config_mode? " ":"",
|
|
list[idx].name, gc_percent_escape (s));
|
|
else
|
|
{
|
|
for (j=0; names[j]; j++)
|
|
if (!strcmp (names[j], list[idx].name))
|
|
{
|
|
if (show_config_mode)
|
|
es_fputs (" ", fp);
|
|
es_fputs (s, fp);
|
|
es_putc (opt.null? '\0':'\n', fp);
|
|
}
|
|
}
|
|
|
|
/* In show config mode check that the socket files are accessible. */
|
|
if (list[idx].extra && show_config_mode)
|
|
{
|
|
estream_t tmpfp;
|
|
|
|
tmpfp = es_fopen (s, "rb");
|
|
if (tmpfp)
|
|
es_fclose (tmpfp); /* All fine - we can read that file. */
|
|
else if ((err=gpg_error_from_syserror ()) == GPG_ERR_ENOENT
|
|
|| err == GPG_ERR_ENXIO)
|
|
; /* No such file/ No such device or address - this is okay. */
|
|
else
|
|
es_fprintf (fp,
|
|
"# Warning: error reading existing file '%s': %s\n",
|
|
s, gpg_strerror (err));
|
|
}
|
|
|
|
xfree (tmp);
|
|
}
|
|
if (show_config_mode)
|
|
es_fprintf (fp, "#+end_example\n");
|
|
|
|
|
|
#ifdef HAVE_W32_SYSTEM
|
|
tmp = read_w32_registry_string (NULL,
|
|
gnupg_registry_dir (),
|
|
"HomeDir");
|
|
if (tmp)
|
|
{
|
|
int hkcu = 0;
|
|
int hklm = 0;
|
|
|
|
xfree (tmp);
|
|
if ((tmp = read_w32_registry_string ("HKEY_CURRENT_USER",
|
|
gnupg_registry_dir (),
|
|
"HomeDir")))
|
|
{
|
|
xfree (tmp);
|
|
hkcu = 1;
|
|
}
|
|
if ((tmp = read_w32_registry_string ("HKEY_LOCAL_MACHINE",
|
|
gnupg_registry_dir (),
|
|
"HomeDir")))
|
|
{
|
|
xfree (tmp);
|
|
hklm = 1;
|
|
}
|
|
|
|
es_fflush (fp);
|
|
if (show_config_mode)
|
|
es_fprintf (fp, "\n"
|
|
"Note: homedir taken from registry key %s%s\\%s:%s\n"
|
|
"\n",
|
|
hkcu?"HKCU":"", hklm?"HKLM":"",
|
|
gnupg_registry_dir (), "HomeDir");
|
|
else
|
|
log_info ("Warning: homedir taken from registry key (%s:%s) in%s%s\n",
|
|
gnupg_registry_dir (), "HomeDir",
|
|
hkcu?" HKCU":"",
|
|
hklm?" HKLM":"");
|
|
}
|
|
else if ((tmp = read_w32_registry_string (NULL,
|
|
gnupg_registry_dir (),
|
|
NULL)))
|
|
{
|
|
xfree (tmp);
|
|
es_fflush (fp);
|
|
if (show_config_mode)
|
|
es_fprintf (fp, "\n"
|
|
"Note: registry %s without value in HKCU or HKLM\n"
|
|
"\n", GNUPG_REGISTRY_DIR);
|
|
else
|
|
log_info ("Warning: registry key (%s) without value in HKCU or HKLM\n",
|
|
gnupg_registry_dir ());
|
|
}
|
|
|
|
#else /*!HAVE_W32_SYSTEM*/
|
|
(void)show_config_mode;
|
|
#endif /*!HAVE_W32_SYSTEM*/
|
|
}
|
|
|
|
|
|
|
|
/* Check whether NAME is valid argument for query_swdb(). Valid names
|
|
* start with a letter and contain only alphanumeric characters or an
|
|
* underscore. */
|
|
static int
|
|
valid_swdb_name_p (const char *name)
|
|
{
|
|
if (!name || !*name || !alphap (name))
|
|
return 0;
|
|
|
|
for (name++; *name; name++)
|
|
if (!alnump (name) && *name != '_')
|
|
return 0;
|
|
|
|
return 1;
|
|
}
|
|
|
|
|
|
/* Query the SWDB file. If necessary and possible this functions asks
|
|
* the dirmngr to load an updated version of that file. The caller
|
|
* needs to provide the NAME to query (e.g. "gnupg", "libgcrypt") and
|
|
* optional the currently installed version in CURRENT_VERSION. The
|
|
* output written to OUT is a colon delimited line with these fields:
|
|
*
|
|
* name :: The name of the package
|
|
* curvers:: The installed version if given.
|
|
* status :: This value tells the status of the software package
|
|
* '-' :: No information available
|
|
* (error or CURRENT_VERSION not given)
|
|
* '?' :: Unknown NAME
|
|
* 'u' :: Update available
|
|
* 'c' :: The version is Current
|
|
* 'n' :: The current version is already Newer than the
|
|
* available one.
|
|
* minvers :: The minimal secure version.
|
|
* error :: 0 on success or an gpg_err_code_t
|
|
* Common codes seen:
|
|
* GPG_ERR_TOO_OLD :: The SWDB file is to old to be used.
|
|
* GPG_ERR_ENOENT :: The SWDB file is not available.
|
|
* GPG_ERR_BAD_SIGNATURE :: Corrupted SWDB file.
|
|
* filedate:: Date of the swdb file (yyyymmddThhmmss)
|
|
* verified:: Date we checked the validity of the file (yyyyymmddThhmmss)
|
|
* version :: The version string from the swdb.
|
|
* reldate :: Release date of that version (yyyymmddThhmmss)
|
|
* size :: Size of the package in bytes.
|
|
* hash :: SHA-2 hash of the package.
|
|
*
|
|
*/
|
|
static void
|
|
query_swdb (estream_t out, const char *name, const char *current_version)
|
|
{
|
|
gpg_error_t err;
|
|
const char *search_name;
|
|
char *fname = NULL;
|
|
estream_t fp = NULL;
|
|
char *line = NULL;
|
|
char *self_version = NULL;
|
|
size_t length_of_line = 0;
|
|
size_t maxlen;
|
|
ssize_t len;
|
|
const char *fields[2];
|
|
char *p;
|
|
gnupg_isotime_t filedate = {0};
|
|
gnupg_isotime_t verified = {0};
|
|
char *value_ver = NULL;
|
|
char *value_minver = NULL;
|
|
gnupg_isotime_t value_date = {0};
|
|
char *value_size = NULL;
|
|
char *value_sha2 = NULL;
|
|
unsigned long value_size_ul = 0;
|
|
int status, i;
|
|
|
|
|
|
if (!valid_swdb_name_p (name))
|
|
{
|
|
log_error ("error in package name '%s': %s\n",
|
|
name, gpg_strerror (GPG_ERR_INV_NAME));
|
|
goto leave;
|
|
}
|
|
if (!strcmp (name, "gnupg"))
|
|
search_name = GNUPG_SWDB_TAG;
|
|
else if (!strcmp (name, "gnupg1"))
|
|
search_name = "gnupg1";
|
|
else
|
|
search_name = name;
|
|
|
|
if (!current_version && !strcmp (name, "gnupg"))
|
|
{
|
|
/* Use our own version but string a possible beta string. */
|
|
self_version = xstrdup (PACKAGE_VERSION);
|
|
p = strchr (self_version, '-');
|
|
if (p)
|
|
*p = 0;
|
|
current_version = self_version;
|
|
}
|
|
|
|
if (current_version && (strchr (current_version, ':')
|
|
|| compare_version_strings (current_version, NULL)))
|
|
{
|
|
log_error ("error in version string '%s': %s\n",
|
|
current_version, gpg_strerror (GPG_ERR_INV_ARG));
|
|
goto leave;
|
|
}
|
|
|
|
fname = make_filename (gnupg_homedir (), "swdb.lst", NULL);
|
|
fp = es_fopen (fname, "r");
|
|
if (!fp)
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
es_fprintf (out, "%s:%s:-::%u:::::::\n",
|
|
name,
|
|
current_version? current_version : "",
|
|
gpg_err_code (err));
|
|
if (gpg_err_code (err) != GPG_ERR_ENOENT)
|
|
log_error (_("error opening '%s': %s\n"), fname, gpg_strerror (err));
|
|
goto leave;
|
|
}
|
|
|
|
/* Note that the parser uses the first occurrence of a matching
|
|
* values and ignores possible duplicated values. */
|
|
|
|
maxlen = 2048; /* Set limit. */
|
|
while ((len = es_read_line (fp, &line, &length_of_line, &maxlen)) > 0)
|
|
{
|
|
if (!maxlen)
|
|
{
|
|
err = gpg_error (GPG_ERR_LINE_TOO_LONG);
|
|
log_error (_("error reading '%s': %s\n"), fname, gpg_strerror (err));
|
|
goto leave;
|
|
}
|
|
/* Strip newline and carriage return, if present. */
|
|
while (len > 0 && (line[len - 1] == '\n' || line[len - 1] == '\r'))
|
|
line[--len] = '\0';
|
|
|
|
if (split_fields (line, fields, DIM (fields)) < DIM(fields))
|
|
continue; /* Skip empty lines and names w/o a value. */
|
|
if (*fields[0] == '#')
|
|
continue; /* Skip comments. */
|
|
|
|
/* Record the meta data. */
|
|
if (!*filedate && !strcmp (fields[0], ".filedate"))
|
|
{
|
|
string2isotime (filedate, fields[1]);
|
|
continue;
|
|
}
|
|
if (!*verified && !strcmp (fields[0], ".verified"))
|
|
{
|
|
string2isotime (verified, fields[1]);
|
|
continue;
|
|
}
|
|
|
|
/* Tokenize the name. */
|
|
p = strrchr (fields[0], '_');
|
|
if (!p)
|
|
continue; /* Name w/o an underscore. */
|
|
*p++ = 0;
|
|
|
|
/* Wait for the requested name. */
|
|
if (!strcmp (fields[0], search_name))
|
|
{
|
|
if (!strcmp (p, "ver") && !value_ver)
|
|
value_ver = xstrdup (fields[1]);
|
|
else if (!strcmp (p, "date") && !*value_date)
|
|
string2isotime (value_date, fields[1]);
|
|
else if (!strcmp (p, "size") && !value_size)
|
|
value_size = xstrdup (fields[1]);
|
|
else if (!strcmp (p, "sha2") && !value_sha2)
|
|
value_sha2 = xstrdup (fields[1]);
|
|
else if (!strcmp (p, "minver") && !value_minver)
|
|
value_minver = xstrdup (fields[1]);
|
|
}
|
|
}
|
|
if (len < 0 || es_ferror (fp))
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error (_("error reading '%s': %s\n"), fname, gpg_strerror (err));
|
|
goto leave;
|
|
}
|
|
|
|
if (!*filedate || !*verified)
|
|
{
|
|
err = gpg_error (GPG_ERR_INV_TIME);
|
|
es_fprintf (out, "%s:%s:-::%u:::::::\n",
|
|
name,
|
|
current_version? current_version : "",
|
|
gpg_err_code (err));
|
|
goto leave;
|
|
}
|
|
|
|
if (!value_ver)
|
|
{
|
|
es_fprintf (out, "%s:%s:?:::::::::\n",
|
|
name,
|
|
current_version? current_version : "");
|
|
goto leave;
|
|
}
|
|
|
|
if (value_size)
|
|
{
|
|
gpg_err_set_errno (0);
|
|
value_size_ul = strtoul (value_size, &p, 10);
|
|
if (errno)
|
|
value_size_ul = 0;
|
|
else if (*p == 'k')
|
|
value_size_ul *= 1024;
|
|
}
|
|
|
|
err = 0;
|
|
status = '-';
|
|
if (compare_version_strings (value_ver, NULL))
|
|
err = gpg_error (GPG_ERR_INV_VALUE);
|
|
else if (!current_version)
|
|
;
|
|
else if (!(i = compare_version_strings (value_ver, current_version)))
|
|
status = 'c';
|
|
else if (i > 0)
|
|
status = 'u';
|
|
else
|
|
status = 'n';
|
|
|
|
es_fprintf (out, "%s:%s:%c:%s:%d:%s:%s:%s:%s:%lu:%s:\n",
|
|
name,
|
|
current_version? current_version : "",
|
|
status,
|
|
value_minver? value_minver : value_ver,
|
|
err,
|
|
filedate,
|
|
verified,
|
|
value_ver,
|
|
value_date,
|
|
value_size_ul,
|
|
value_sha2? value_sha2 : "");
|
|
|
|
leave:
|
|
xfree (value_minver);
|
|
xfree (value_ver);
|
|
xfree (value_size);
|
|
xfree (value_sha2);
|
|
xfree (line);
|
|
es_fclose (fp);
|
|
xfree (fname);
|
|
xfree (self_version);
|
|
}
|
|
|
|
|
|
#if !defined(HAVE_W32_SYSTEM)
|
|
/* dotlock tool to handle dotlock by command line
|
|
DO_LOCK: 1 for to lock, 0 for unlock
|
|
FILENAME: filename for the dotlock */
|
|
static void
|
|
dotlock_tool (int do_lock, const char *filename)
|
|
{
|
|
dotlock_t h;
|
|
unsigned int flags = DOTLOCK_LOCK_BY_PARENT;
|
|
|
|
if (!do_lock)
|
|
flags |= DOTLOCK_LOCKED;
|
|
|
|
h = dotlock_create (filename, flags);
|
|
if (!h)
|
|
{
|
|
if (do_lock)
|
|
log_error ("error creating the lock file\n");
|
|
else
|
|
log_error ("no lock file found\n");
|
|
return;
|
|
}
|
|
|
|
if (do_lock)
|
|
{
|
|
if (dotlock_take (h, 0))
|
|
log_error ("error taking the lock\n");
|
|
}
|
|
else
|
|
dotlock_release (h);
|
|
|
|
dotlock_destroy (h);
|
|
}
|
|
#endif
|
|
|
|
/* gpgconf main. */
|
|
int
|
|
main (int argc, char **argv)
|
|
{
|
|
gpg_error_t err;
|
|
gpgrt_argparse_t pargs;
|
|
const char *fname;
|
|
int no_more_options = 0;
|
|
enum cmd_and_opt_values cmd = 0;
|
|
estream_t outfp = NULL;
|
|
int show_socket = 0;
|
|
const char *changeuser = NULL;
|
|
|
|
early_system_init ();
|
|
gnupg_reopen_std (GPGCONF_NAME);
|
|
gpgrt_set_strusage (my_strusage);
|
|
log_set_prefix (GPGCONF_NAME, GPGRT_LOG_WITH_PREFIX|GPGRT_LOG_NO_REGISTRY);
|
|
|
|
/* Make sure that our subsystems are ready. */
|
|
i18n_init();
|
|
init_common_subsystems (&argc, &argv);
|
|
gc_components_init ();
|
|
|
|
/* Parse the command line. */
|
|
pargs.argc = &argc;
|
|
pargs.argv = &argv;
|
|
pargs.flags = ARGPARSE_FLAG_KEEP;
|
|
while (!no_more_options && gpgrt_argparse (NULL, &pargs, opts))
|
|
{
|
|
switch (pargs.r_opt)
|
|
{
|
|
case oOutput: opt.outfile = pargs.r.ret_str; break;
|
|
case oQuiet: opt.quiet = 1; break;
|
|
case oDryRun: opt.dry_run = 1; break;
|
|
case oRuntime: opt.runtime = 1; break;
|
|
case oVerbose: opt.verbose++; break;
|
|
case oNoVerbose: opt.verbose = 0; break;
|
|
case oHomedir: gnupg_set_homedir (pargs.r.ret_str); break;
|
|
case oBuilddir: gnupg_set_builddir (pargs.r.ret_str); break;
|
|
case oNull: opt.null = 1; break;
|
|
case oStatusFD:
|
|
set_status_fd (translate_sys2libc_fd_int (pargs.r.ret_int, 1));
|
|
break;
|
|
case oShowSocket: show_socket = 1; break;
|
|
case oChUid: changeuser = pargs.r.ret_str; break;
|
|
|
|
case aListDirs:
|
|
case aListComponents:
|
|
case aCheckPrograms:
|
|
case aListOptions:
|
|
case aChangeOptions:
|
|
case aCheckOptions:
|
|
case aApplyDefaults:
|
|
case aApplyProfile:
|
|
case aListConfig:
|
|
case aCheckConfig:
|
|
case aQuerySWDB:
|
|
case aReload:
|
|
case aLaunch:
|
|
case aKill:
|
|
case aCreateSocketDir:
|
|
case aRemoveSocketDir:
|
|
case aShowVersions:
|
|
case aShowConfigs:
|
|
case aShowCodepages:
|
|
case aDotlockLock:
|
|
case aDotlockUnlock:
|
|
cmd = pargs.r_opt;
|
|
break;
|
|
|
|
default: pargs.err = 2; break;
|
|
}
|
|
}
|
|
|
|
gpgrt_argparse (NULL, &pargs, NULL); /* Release internal state. */
|
|
|
|
if (log_get_errorcount (0))
|
|
gpgconf_failure (GPG_ERR_USER_2);
|
|
|
|
/* Print a warning if an argument looks like an option. */
|
|
if (!opt.quiet && !(pargs.flags & ARGPARSE_FLAG_STOP_SEEN))
|
|
{
|
|
int i;
|
|
|
|
for (i=0; i < argc; i++)
|
|
if (argv[i][0] == '-' && argv[i][1] == '-')
|
|
log_info (_("Note: '%s' is not considered an option\n"), argv[i]);
|
|
}
|
|
|
|
fname = argc ? *argv : NULL;
|
|
|
|
/* If requested switch to the requested user or die. */
|
|
if (changeuser && (err = gnupg_chuid (changeuser, 0)))
|
|
gpgconf_failure (err);
|
|
|
|
/* Set the configuration directories for use by gpgrt_argparser. We
|
|
* don't have a configuration file for this program but we have code
|
|
* which reads the component's config files. */
|
|
gpgrt_set_confdir (GPGRT_CONFDIR_SYS, gnupg_sysconfdir ());
|
|
gpgrt_set_confdir (GPGRT_CONFDIR_USER, gnupg_homedir ());
|
|
|
|
switch (cmd)
|
|
{
|
|
case aListComponents:
|
|
default:
|
|
/* List all components. */
|
|
gc_component_list_components (get_outfp (&outfp));
|
|
break;
|
|
|
|
case aCheckPrograms:
|
|
/* Check all programs. */
|
|
gc_check_programs (get_outfp (&outfp));
|
|
break;
|
|
|
|
case aListOptions:
|
|
case aChangeOptions:
|
|
case aCheckOptions:
|
|
if (!fname)
|
|
{
|
|
es_fprintf (es_stderr, _("usage: %s [options] "), GPGCONF_NAME);
|
|
es_putc ('\n', es_stderr);
|
|
es_fputs (_("Need one component argument"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (GPG_ERR_USER_2);
|
|
}
|
|
else
|
|
{
|
|
int idx = gc_component_find (fname);
|
|
if (idx < 0)
|
|
{
|
|
es_fputs (_("Component not found"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (0);
|
|
}
|
|
if (cmd == aCheckOptions)
|
|
gc_component_check_options (idx, get_outfp (&outfp), NULL);
|
|
else
|
|
{
|
|
gc_component_retrieve_options (idx);
|
|
if (gc_process_gpgconf_conf (NULL, 1, 0, NULL))
|
|
gpgconf_failure (0);
|
|
if (cmd == aListOptions)
|
|
gc_component_list_options (idx, get_outfp (&outfp));
|
|
else if (cmd == aChangeOptions)
|
|
gc_component_change_options (idx, es_stdin,
|
|
get_outfp (&outfp), 0);
|
|
}
|
|
}
|
|
break;
|
|
|
|
case aLaunch:
|
|
case aKill:
|
|
if (!fname)
|
|
{
|
|
es_fprintf (es_stderr, _("usage: %s [options] "), GPGCONF_NAME);
|
|
es_putc ('\n', es_stderr);
|
|
es_fputs (_("Need one component argument"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (GPG_ERR_USER_2);
|
|
}
|
|
else if (!strcmp (fname, "all"))
|
|
{
|
|
if (cmd == aLaunch)
|
|
{
|
|
if (gc_component_launch (-1))
|
|
gpgconf_failure (0);
|
|
}
|
|
else
|
|
{
|
|
gc_component_kill (-1);
|
|
}
|
|
}
|
|
else
|
|
{
|
|
/* Launch/Kill a given component. */
|
|
int idx;
|
|
|
|
idx = gc_component_find (fname);
|
|
if (idx < 0)
|
|
{
|
|
es_fputs (_("Component not found"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (0);
|
|
}
|
|
else if (cmd == aLaunch)
|
|
{
|
|
err = gc_component_launch (idx);
|
|
if (show_socket)
|
|
{
|
|
char *names[2];
|
|
|
|
if (idx == GC_COMPONENT_GPG_AGENT)
|
|
names[0] = "agent-socket";
|
|
else if (idx == GC_COMPONENT_DIRMNGR)
|
|
names[0] = "dirmngr-socket";
|
|
else if (idx == GC_COMPONENT_KEYBOXD)
|
|
names[0] = "keyboxd-socket";
|
|
else
|
|
names[0] = NULL;
|
|
names[1] = NULL;
|
|
get_outfp (&outfp);
|
|
list_dirs (outfp, names, 0);
|
|
}
|
|
if (err)
|
|
gpgconf_failure (0);
|
|
}
|
|
else
|
|
{
|
|
/* We don't error out if the kill failed because this
|
|
command should do nothing if the component is not
|
|
running. */
|
|
gc_component_kill (idx);
|
|
}
|
|
}
|
|
break;
|
|
|
|
case aReload:
|
|
if (!fname || !strcmp (fname, "all"))
|
|
{
|
|
/* Reload all. */
|
|
gc_component_reload (-1);
|
|
}
|
|
else
|
|
{
|
|
/* Reload given component. */
|
|
int idx;
|
|
|
|
idx = gc_component_find (fname);
|
|
if (idx < 0)
|
|
{
|
|
es_fputs (_("Component not found"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (0);
|
|
}
|
|
else
|
|
{
|
|
gc_component_reload (idx);
|
|
}
|
|
}
|
|
break;
|
|
|
|
case aListConfig:
|
|
if (gc_process_gpgconf_conf (fname, 0, 0, get_outfp (&outfp)))
|
|
gpgconf_failure (0);
|
|
break;
|
|
|
|
case aCheckConfig:
|
|
if (gc_process_gpgconf_conf (fname, 0, 0, NULL))
|
|
gpgconf_failure (0);
|
|
break;
|
|
|
|
case aApplyDefaults:
|
|
if (fname)
|
|
{
|
|
es_fprintf (es_stderr, _("usage: %s [options] "), GPGCONF_NAME);
|
|
es_putc ('\n', es_stderr);
|
|
es_fputs (_("No argument allowed"), es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (GPG_ERR_USER_2);
|
|
}
|
|
if (!opt.dry_run && gnupg_access (gnupg_homedir (), F_OK))
|
|
gnupg_maybe_make_homedir (gnupg_homedir (), opt.quiet);
|
|
gc_component_retrieve_options (-1);
|
|
if (gc_process_gpgconf_conf (NULL, 1, 1, NULL))
|
|
gpgconf_failure (0);
|
|
break;
|
|
|
|
case aApplyProfile:
|
|
if (!opt.dry_run && gnupg_access (gnupg_homedir (), F_OK))
|
|
gnupg_maybe_make_homedir (gnupg_homedir (), opt.quiet);
|
|
gc_component_retrieve_options (-1);
|
|
if (gc_apply_profile (fname))
|
|
gpgconf_failure (0);
|
|
break;
|
|
|
|
case aListDirs:
|
|
/* Show the system configuration directories for gpgconf. */
|
|
get_outfp (&outfp);
|
|
list_dirs (outfp, argc? argv : NULL, 0);
|
|
break;
|
|
|
|
case aQuerySWDB:
|
|
/* Query the software version database. */
|
|
if (!fname || argc > 2)
|
|
{
|
|
es_fprintf (es_stderr, "usage: %s --query-swdb NAME [VERSION]\n",
|
|
GPGCONF_NAME);
|
|
gpgconf_failure (GPG_ERR_USER_2);
|
|
}
|
|
get_outfp (&outfp);
|
|
query_swdb (outfp, fname, argc > 1? argv[1] : NULL);
|
|
break;
|
|
|
|
case aCreateSocketDir:
|
|
{
|
|
char *socketdir;
|
|
unsigned int flags;
|
|
|
|
/* Make sure that the top /run/user/UID/gnupg dir has been
|
|
* created. */
|
|
gnupg_socketdir ();
|
|
|
|
/* Check the /var/run dir. */
|
|
socketdir = _gnupg_socketdir_internal (1, &flags);
|
|
if ((flags & 64) && !opt.dry_run)
|
|
{
|
|
/* No sub dir - create it. */
|
|
if (gnupg_mkdir (socketdir, "-rwx"))
|
|
gc_error (1, errno, "error creating '%s'", socketdir);
|
|
/* Try again. */
|
|
xfree (socketdir);
|
|
socketdir = _gnupg_socketdir_internal (1, &flags);
|
|
}
|
|
|
|
/* Give some info. */
|
|
if ( (flags & ~32) || opt.verbose || opt.dry_run)
|
|
{
|
|
log_info ("socketdir is '%s'\n", socketdir);
|
|
if ((flags & 1)) log_info ("\tgeneral error\n");
|
|
if ((flags & 2)) log_info ("\tno /run/user dir\n");
|
|
if ((flags & 4)) log_info ("\tbad permissions\n");
|
|
if ((flags & 8)) log_info ("\tbad permissions (subdir)\n");
|
|
if ((flags & 16)) log_info ("\tmkdir failed\n");
|
|
if ((flags & 32)) log_info ("\tnon-default homedir\n");
|
|
if ((flags & 64)) log_info ("\tno such subdir\n");
|
|
if ((flags & 128)) log_info ("\tusing homedir as fallback\n");
|
|
}
|
|
|
|
if ((flags & ~32) && !opt.dry_run)
|
|
gc_error (1, 0, "error creating socket directory");
|
|
|
|
xfree (socketdir);
|
|
}
|
|
break;
|
|
|
|
case aRemoveSocketDir:
|
|
{
|
|
char *socketdir;
|
|
unsigned int flags;
|
|
|
|
/* Check the /var/run dir. */
|
|
socketdir = _gnupg_socketdir_internal (1, &flags);
|
|
if ((flags & 128))
|
|
log_info ("ignoring request to remove non /run/user socket dir\n");
|
|
else if (opt.dry_run)
|
|
;
|
|
else if (gnupg_rmdir (socketdir))
|
|
{
|
|
/* If the director is not empty we first try to delete
|
|
* socket files. */
|
|
err = gpg_error_from_syserror ();
|
|
if (gpg_err_code (err) == GPG_ERR_ENOTEMPTY
|
|
|| gpg_err_code (err) == GPG_ERR_EEXIST)
|
|
{
|
|
static const char * const names[] = {
|
|
GPG_AGENT_SOCK_NAME,
|
|
GPG_AGENT_EXTRA_SOCK_NAME,
|
|
GPG_AGENT_BROWSER_SOCK_NAME,
|
|
GPG_AGENT_SSH_SOCK_NAME,
|
|
SCDAEMON_SOCK_NAME,
|
|
KEYBOXD_SOCK_NAME,
|
|
DIRMNGR_SOCK_NAME,
|
|
TPM2DAEMON_SOCK_NAME
|
|
};
|
|
int i;
|
|
char *p;
|
|
|
|
for (i=0; i < DIM(names); i++)
|
|
{
|
|
p = strconcat (socketdir , "/", names[i], NULL);
|
|
if (p)
|
|
gnupg_remove (p);
|
|
xfree (p);
|
|
}
|
|
if (gnupg_rmdir (socketdir))
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
gc_error (1, 0, "error removing '%s': %s",
|
|
socketdir, gpg_strerror (err));
|
|
}
|
|
}
|
|
else if (gpg_err_code (err) == GPG_ERR_ENOENT)
|
|
gc_error (0, 0, "warning: removing '%s' failed: %s",
|
|
socketdir, gpg_strerror (err));
|
|
else
|
|
gc_error (1, 0, "error removing '%s': %s",
|
|
socketdir, gpg_strerror (err));
|
|
}
|
|
|
|
xfree (socketdir);
|
|
}
|
|
break;
|
|
|
|
case aShowVersions:
|
|
{
|
|
get_outfp (&outfp);
|
|
show_versions (outfp);
|
|
}
|
|
break;
|
|
|
|
case aShowConfigs:
|
|
{
|
|
get_outfp (&outfp);
|
|
show_configs (outfp);
|
|
}
|
|
break;
|
|
|
|
case aShowCodepages:
|
|
#ifdef HAVE_W32_SYSTEM
|
|
{
|
|
get_outfp (&outfp);
|
|
if (GetConsoleCP () != GetConsoleOutputCP ())
|
|
es_fprintf (outfp, "Console: CP%u/CP%u\n",
|
|
GetConsoleCP (), GetConsoleOutputCP ());
|
|
else
|
|
es_fprintf (outfp, "Console: CP%u\n", GetConsoleCP ());
|
|
es_fprintf (outfp, "ANSI: CP%u\n", GetACP ());
|
|
es_fprintf (outfp, "OEM: CP%u\n", GetOEMCP ());
|
|
}
|
|
#endif
|
|
break;
|
|
|
|
case aDotlockLock:
|
|
case aDotlockUnlock:
|
|
#if !defined(HAVE_W32_SYSTEM)
|
|
if (!fname)
|
|
{
|
|
es_fprintf (es_stderr, "usage: %s --%slock NAME",
|
|
GPGCONF_NAME, cmd==aDotlockUnlock?"un":"");
|
|
es_putc ('\n', es_stderr);
|
|
es_fputs ("Need name of file protected by the lock", es_stderr);
|
|
es_putc ('\n', es_stderr);
|
|
gpgconf_failure (GPG_ERR_SYNTAX);
|
|
}
|
|
else
|
|
{
|
|
char *filename;
|
|
|
|
/* Keybox pubring.db lock is under public-keys.d. */
|
|
if (!strcmp (fname, "pubring.db"))
|
|
fname = "public-keys.d/pubring.db";
|
|
|
|
filename = make_absfilename (gnupg_homedir (), fname, NULL);
|
|
dotlock_tool (cmd == aDotlockLock, filename);
|
|
xfree (filename);
|
|
}
|
|
#endif
|
|
break;
|
|
}
|
|
|
|
if (outfp != es_stdout)
|
|
if (es_fclose (outfp))
|
|
gc_error (1, errno, "error closing '%s'", opt.outfile);
|
|
|
|
|
|
if (log_get_errorcount (0))
|
|
gpgconf_failure (0);
|
|
else
|
|
gpgconf_write_status (STATUS_SUCCESS, NULL);
|
|
return 0;
|
|
}
|
|
|
|
|
|
void
|
|
gpgconf_failure (gpg_error_t err)
|
|
{
|
|
log_flush ();
|
|
if (!err)
|
|
err = gpg_error (GPG_ERR_GENERAL);
|
|
gpgconf_write_status
|
|
(STATUS_FAILURE, "- %u",
|
|
gpg_err_code (err) == GPG_ERR_USER_2? GPG_ERR_EINVAL : err);
|
|
exit (gpg_err_code (err) == GPG_ERR_USER_2? 2 : 1);
|
|
}
|
|
|
|
|
|
|
|
/* Parse the revision part from the extended version blurb. */
|
|
static const char *
|
|
get_revision_from_blurb (const char *blurb, int *r_len)
|
|
{
|
|
const char *s = blurb? blurb : "";
|
|
int n;
|
|
|
|
for (; *s; s++)
|
|
if (*s == '\n' && s[1] == '(')
|
|
break;
|
|
if (s)
|
|
{
|
|
s += 2;
|
|
for (n=0; s[n] && s[n] != ' '; n++)
|
|
;
|
|
}
|
|
else
|
|
{
|
|
s = "?";
|
|
n = 1;
|
|
}
|
|
*r_len = n;
|
|
return s;
|
|
}
|
|
|
|
|
|
static void
|
|
show_version_gnupg (estream_t fp, const char *prefix)
|
|
{
|
|
char *fname, *p, *p0;
|
|
size_t n;
|
|
estream_t verfp;
|
|
char *line = NULL;
|
|
size_t line_len = 0;
|
|
ssize_t length;
|
|
|
|
es_fprintf (fp, "%s%sGnuPG %s (%s)\n%s%s\n", prefix, *prefix?"":"* ",
|
|
gpgrt_strusage (13), BUILD_COMMITID, prefix, gpgrt_strusage (17));
|
|
|
|
/* Show the GnuPG VS-Desktop version in --show-configs mode */
|
|
if (prefix && *prefix)
|
|
{
|
|
fname = make_filename (gnupg_bindir (), NULL);
|
|
n = strlen (fname);
|
|
if (n > 10 && (!ascii_strcasecmp (fname + n - 10, "/GnuPG/bin")
|
|
|| !ascii_strcasecmp (fname + n - 10, "\\GnuPG\\bin")))
|
|
{
|
|
/* Append VERSION to the ../../ directory. Note that VERSION
|
|
* is only 7 bytes and thus fits. */
|
|
strcpy (fname + n - 9, "VERSION");
|
|
verfp = es_fopen (fname, "r");
|
|
if (!verfp)
|
|
es_fprintf (fp, "%s[VERSION file not found]\n", prefix);
|
|
else
|
|
{
|
|
int lnr = 0;
|
|
|
|
p0 = NULL;
|
|
while ((length = es_read_line (verfp, &line, &line_len, NULL))>0)
|
|
{
|
|
lnr++;
|
|
trim_spaces (line);
|
|
if (lnr == 1 && *line != '[')
|
|
{
|
|
/* Old file format where we look only at the
|
|
* first line. */
|
|
p0 = line;
|
|
break;
|
|
}
|
|
else if (!strncmp (line, "version=", 8))
|
|
{
|
|
p0 = line + 8;
|
|
break;
|
|
}
|
|
}
|
|
if (length < 0 || es_ferror (verfp))
|
|
es_fprintf (fp, "%s[VERSION file read error]\n", prefix);
|
|
else if (p0)
|
|
{
|
|
for (p=p0; *p; p++)
|
|
if (*p < ' ' || *p > '~' || *p == '[')
|
|
*p = '?';
|
|
es_fprintf (fp, "%s%s\n", prefix, p0);
|
|
}
|
|
else
|
|
es_fprintf (fp, "%s[VERSION file is empty]\n", prefix);
|
|
|
|
es_fclose (verfp);
|
|
}
|
|
}
|
|
xfree (fname);
|
|
}
|
|
xfree (line);
|
|
|
|
#ifdef HAVE_W32_SYSTEM
|
|
{
|
|
OSVERSIONINFO osvi = { sizeof (osvi) };
|
|
|
|
GetVersionEx (&osvi);
|
|
es_fprintf (fp, "%sWindows %lu.%lu build %lu%s%s%s\n",
|
|
prefix,
|
|
(unsigned long)osvi.dwMajorVersion,
|
|
(unsigned long)osvi.dwMinorVersion,
|
|
(unsigned long)osvi.dwBuildNumber,
|
|
*osvi.szCSDVersion? " (":"",
|
|
osvi.szCSDVersion,
|
|
*osvi.szCSDVersion? ")":""
|
|
);
|
|
}
|
|
#endif /*HAVE_W32_SYSTEM*/
|
|
}
|
|
|
|
|
|
static void
|
|
show_version_libgcrypt (estream_t fp)
|
|
{
|
|
const char *s;
|
|
int n;
|
|
|
|
s = get_revision_from_blurb (gcry_check_version ("\x01\x01"), &n);
|
|
es_fprintf (fp, "* Libgcrypt %s (%.*s)\n",
|
|
gcry_check_version (NULL), n, s);
|
|
s = gcry_get_config (0, NULL);
|
|
if (s)
|
|
es_fputs (s, fp);
|
|
}
|
|
|
|
|
|
static void
|
|
show_version_gpgrt (estream_t fp)
|
|
{
|
|
const char *s;
|
|
int n;
|
|
|
|
s = get_revision_from_blurb (gpg_error_check_version ("\x01\x01"), &n);
|
|
es_fprintf (fp, "* GpgRT %s (%.*s)\n",
|
|
gpg_error_check_version (NULL), n, s);
|
|
}
|
|
|
|
|
|
/* Printing version information for other libraries is problematic
|
|
* because we don't want to link gpgconf to all these libraries. The
|
|
* best solution is delegating this to dirmngr which uses libassuan,
|
|
* libksba, libnpth and ntbtls anyway. */
|
|
static void
|
|
show_versions_via_dirmngr (estream_t fp)
|
|
{
|
|
gpg_error_t err;
|
|
const char *pgmname;
|
|
const char *argv[2];
|
|
estream_t outfp;
|
|
gpgrt_process_t proc;
|
|
char *line = NULL;
|
|
size_t line_len = 0;
|
|
ssize_t length;
|
|
|
|
pgmname = gnupg_module_name (GNUPG_MODULE_NAME_DIRMNGR);
|
|
argv[0] = "--gpgconf-versions";
|
|
argv[1] = NULL;
|
|
err = gpgrt_process_spawn (pgmname, argv, GPGRT_PROCESS_STDOUT_PIPE,
|
|
NULL, &proc);
|
|
if (err)
|
|
{
|
|
log_error ("error spawning %s: %s", pgmname, gpg_strerror (err));
|
|
es_fprintf (fp, "[error: can't get further info]\n");
|
|
return;
|
|
}
|
|
|
|
gpgrt_process_get_streams (proc, 0, NULL, &outfp, NULL);
|
|
while ((length = es_read_line (outfp, &line, &line_len, NULL)) > 0)
|
|
{
|
|
/* Strip newline and carriage return, if present. */
|
|
while (length > 0
|
|
&& (line[length - 1] == '\n' || line[length - 1] == '\r'))
|
|
line[--length] = '\0';
|
|
es_fprintf (fp, "%s\n", line);
|
|
}
|
|
if (length < 0 || es_ferror (outfp))
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error ("error reading from %s: %s\n", pgmname, gpg_strerror (err));
|
|
}
|
|
if (es_fclose (outfp))
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error ("error closing output stream of %s: %s\n",
|
|
pgmname, gpg_strerror (err));
|
|
}
|
|
|
|
err = gpgrt_process_wait (proc, 1);
|
|
if (!err)
|
|
{
|
|
int exitcode;
|
|
|
|
gpgrt_process_ctl (proc, GPGRT_PROCESS_GET_EXIT_ID, &exitcode);
|
|
if (exitcode)
|
|
{
|
|
log_error ("running %s failed (exitcode=%d): %s\n",
|
|
pgmname, exitcode, gpg_strerror (err));
|
|
es_fprintf (fp, "[error: can't get further info]\n");
|
|
}
|
|
}
|
|
gpgrt_process_release (proc);
|
|
xfree (line);
|
|
}
|
|
|
|
|
|
/* Show all kind of version information. */
|
|
static void
|
|
show_versions (estream_t fp)
|
|
{
|
|
show_version_gnupg (fp, "");
|
|
es_fputc ('\n', fp);
|
|
show_version_libgcrypt (fp);
|
|
es_fputc ('\n', fp);
|
|
show_version_gpgrt (fp);
|
|
es_fputc ('\n', fp);
|
|
show_versions_via_dirmngr (fp);
|
|
}
|
|
|
|
|
|
|
|
/* Copy data from file SRC to DST. Returns 0 on success or an error
|
|
* code on failure. If LISTP is not NULL, that strlist is updated
|
|
* with the variable or registry key names detected. Flag bit 0
|
|
* indicates a registry entry. */
|
|
static gpg_error_t
|
|
my_copy_file (estream_t src, estream_t dst, strlist_t *listp)
|
|
{
|
|
gpg_error_t err;
|
|
char *line = NULL;
|
|
size_t line_len = 0;
|
|
ssize_t length;
|
|
int written;
|
|
|
|
while ((length = es_read_line (src, &line, &line_len, NULL)) > 0)
|
|
{
|
|
/* Prefix each line with two spaces but use a comma if the line
|
|
* starts with a special org-mode character. */
|
|
if (*line == '*' || (*line == '#' && line[1] == '+'))
|
|
es_fputc (',', dst);
|
|
else
|
|
es_fputc (' ', dst);
|
|
es_fputc (' ', dst);
|
|
|
|
written = gpgrt_fwrite (line, 1, length, dst);
|
|
if (written != length)
|
|
return gpg_error_from_syserror ();
|
|
trim_spaces (line);
|
|
if (*line == '[' && listp)
|
|
{
|
|
char **tokens;
|
|
char *p;
|
|
|
|
for (p=line+1; *p; p++)
|
|
if (*p != ' ' && *p != '\t')
|
|
break;
|
|
if (*p && p[strlen (p)-1] == ']')
|
|
p[strlen (p)-1] = 0;
|
|
tokens = strtokenize (p, " \t");
|
|
if (!tokens)
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error ("strtokenize failed: %s\n", gpg_strerror (err));
|
|
return err;
|
|
}
|
|
|
|
/* Check whether we have a getreg or getenv statement and
|
|
* store the third token to later retrieval. */
|
|
if (tokens[0] && tokens[1] && tokens[2]
|
|
&& (!strcmp (tokens[0], "getreg")
|
|
|| !strcmp (tokens[0], "getenv")))
|
|
{
|
|
int isreg = (tokens[0][3] == 'r');
|
|
strlist_t sl = *listp;
|
|
|
|
for (sl = *listp; sl; sl = sl->next)
|
|
if (!strcmp (sl->d, tokens[2]) && (sl->flags & 1) == isreg)
|
|
break;
|
|
if (!sl) /* Not yet in the respective list. */
|
|
{
|
|
sl = add_to_strlist (listp, tokens[2]);
|
|
if (isreg)
|
|
sl->flags = 1;
|
|
}
|
|
}
|
|
|
|
xfree (tokens);
|
|
}
|
|
}
|
|
if (length < 0 || es_ferror (src))
|
|
return gpg_error_from_syserror ();
|
|
|
|
if (gpgrt_fflush (dst))
|
|
return gpg_error_from_syserror ();
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
/* Helper for show_configs */
|
|
static void
|
|
show_configs_one_file (const char *fname, int global, estream_t outfp,
|
|
strlist_t *listp)
|
|
{
|
|
gpg_error_t err;
|
|
estream_t fp;
|
|
|
|
fp = es_fopen (fname, "r");
|
|
if (!fp)
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
if (gpg_err_code (err) != GPG_ERR_ENOENT)
|
|
es_fprintf (outfp, "** %s config \"%s\": %s\n",
|
|
global? "global":"local", fname, gpg_strerror (err));
|
|
}
|
|
else
|
|
{
|
|
es_fprintf (outfp, "** %s config \"%s\"\n#+begin_src\n",
|
|
global? "global":"local", fname);
|
|
err = my_copy_file (fp, outfp, listp);
|
|
es_fprintf (outfp, "\n#+end_src\n");
|
|
if (err)
|
|
log_error ("Error copying file \"%s\": %s\n",
|
|
fname, gpg_strerror (err));
|
|
es_fclose (fp);
|
|
}
|
|
}
|
|
|
|
|
|
#ifdef HAVE_W32_SYSTEM
|
|
/* Print registry entries relevant to the GnuPG system and related
|
|
* software. */
|
|
static void
|
|
show_other_registry_entries (estream_t outfp)
|
|
{
|
|
static struct {
|
|
int group;
|
|
const char *name;
|
|
unsigned int prependregkey:1;
|
|
} names[] =
|
|
{
|
|
{ 1, "HKLM\\Software\\Gpg4win:Install Directory" },
|
|
{ 1, "HKLM\\Software\\Gpg4win:Desktop-Version" },
|
|
{ 1, "HKLM\\Software\\Gpg4win:VS-Desktop-Version" },
|
|
{ 1, ":HomeDir", 1 },
|
|
{ 1, ":DefaultLogFile", 1 },
|
|
{ 2, "\\Software\\Microsoft\\Office\\Outlook\\Addins\\GNU.GpgOL"
|
|
":LoadBehavior" },
|
|
{ 2, "HKCU\\Software\\Microsoft\\Office\\16.0\\Outlook\\Options\\Mail:"
|
|
"ReadAsPlain" },
|
|
{ 2, "HKCU\\Software\\Policies\\Microsoft\\Office\\16.0\\Outlook\\"
|
|
"Options\\Mail:ReadAsPlain" },
|
|
{ 3, "logFile" },
|
|
{ 3, "enableDebug" },
|
|
{ 3, "searchSmimeServers" },
|
|
{ 3, "smimeInsecureReplyAllowed" },
|
|
{ 3, "enableSmime" },
|
|
{ 3, "preferSmime" },
|
|
{ 3, "encryptDefault" },
|
|
{ 3, "signDefault" },
|
|
{ 3, "inlinePGP" },
|
|
{ 3, "replyCrypt" },
|
|
{ 3, "autoresolve" },
|
|
{ 3, "autoretrieve" },
|
|
{ 3, "automation" },
|
|
{ 3, "autosecure" },
|
|
{ 3, "autotrust" },
|
|
{ 3, "autoencryptUntrusted" },
|
|
{ 3, "autoimport" },
|
|
{ 3, "splitBCCMails" },
|
|
{ 3, "combinedOpsEnabled" },
|
|
{ 3, "encryptSubject" },
|
|
{ 0, NULL }
|
|
/* We should add the following key but also hide unset ones.:
|
|
* "smimeNoCertSigErr"
|
|
* "smimeHtmlWarnShown"
|
|
* "alwaysShowApproval"
|
|
* "syncDec"
|
|
* "syncEnc"
|
|
* "draftEnc"
|
|
* "draftKey"
|
|
* Or we just interate over the GpgOL keys.
|
|
*/
|
|
};
|
|
int idx;
|
|
int group = 0;
|
|
char *namebuf = NULL;
|
|
const char *name;
|
|
int from_hklm;
|
|
|
|
for (idx=0; (name = names[idx].name); idx++)
|
|
{
|
|
char *value;
|
|
|
|
if (names[idx].group == 3)
|
|
{
|
|
xfree (namebuf);
|
|
namebuf = xstrconcat ("\\Software\\GNU\\GpgOL", ":",
|
|
names[idx].name, NULL);
|
|
name = namebuf;
|
|
}
|
|
else if (names[idx].prependregkey)
|
|
{
|
|
xfree (namebuf);
|
|
namebuf = xstrconcat ("\\", gnupg_registry_dir (),
|
|
names[idx].name, NULL);
|
|
name = namebuf;
|
|
}
|
|
|
|
value = read_w32_reg_string (name, &from_hklm);
|
|
if (!value)
|
|
continue;
|
|
|
|
if (names[idx].group != group)
|
|
{
|
|
group = names[idx].group;
|
|
es_fprintf (outfp, "\n%s related:\n",
|
|
group == 1 ? "GnuPG Desktop" :
|
|
group == 2 ? "Outlook" :
|
|
group == 3 ? "\\Software\\GNU\\GpgOL"
|
|
: "System" );
|
|
}
|
|
|
|
if (group == 3)
|
|
es_fprintf (outfp, " %s=%s%s\n", names[idx].name, value,
|
|
from_hklm? " [hklm]":"");
|
|
else
|
|
es_fprintf (outfp, " %s\n ->%s<-%s\n", name, value,
|
|
from_hklm? " [hklm]":"");
|
|
|
|
xfree (value);
|
|
}
|
|
|
|
xfree (namebuf);
|
|
}
|
|
|
|
|
|
/* Print registry entries take from a configuration file. */
|
|
static void
|
|
show_registry_entries_from_file (estream_t outfp)
|
|
{
|
|
gpg_error_t err;
|
|
char *fname;
|
|
estream_t fp;
|
|
char *line = NULL;
|
|
size_t length_of_line = 0;
|
|
size_t maxlen;
|
|
ssize_t len;
|
|
char *value = NULL;
|
|
int from_hklm;
|
|
int any = 0;
|
|
|
|
fname = make_filename (gnupg_datadir (), "gpgconf.rnames", NULL);
|
|
fp = es_fopen (fname, "r");
|
|
if (!fp)
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
if (gpg_err_code (err) != GPG_ERR_ENOENT)
|
|
log_error ("error opening '%s': %s\n", fname, gpg_strerror (err));
|
|
goto leave;
|
|
}
|
|
|
|
maxlen = 2048; /* Set limit. */
|
|
while ((len = es_read_line (fp, &line, &length_of_line, &maxlen)) > 0)
|
|
{
|
|
if (!maxlen)
|
|
{
|
|
err = gpg_error (GPG_ERR_LINE_TOO_LONG);
|
|
log_error ("error reading '%s': %s\n", fname, gpg_strerror (err));
|
|
goto leave;
|
|
}
|
|
trim_spaces (line);
|
|
if (*line == '#')
|
|
continue;
|
|
|
|
xfree (value);
|
|
value = read_w32_reg_string (line, &from_hklm);
|
|
if (!value)
|
|
continue;
|
|
|
|
if (!any)
|
|
{
|
|
any = 1;
|
|
es_fprintf (outfp, "\nTaken from gpgconf.rnames:\n");
|
|
}
|
|
|
|
es_fprintf (outfp, " %s\n ->%s<-%s\n", line, value,
|
|
from_hklm? " [hklm]":"");
|
|
|
|
}
|
|
if (len < 0 || es_ferror (fp))
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error ("error reading '%s': %s\n", fname, gpg_strerror (err));
|
|
}
|
|
|
|
leave:
|
|
xfree (value);
|
|
xfree (line);
|
|
es_fclose (fp);
|
|
xfree (fname);
|
|
}
|
|
#endif /*HAVE_W32_SYSTEM*/
|
|
|
|
|
|
/* Show all config files. */
|
|
static void
|
|
show_configs (estream_t outfp)
|
|
{
|
|
static const char *names[] = { "common.conf", "gpg-agent.conf",
|
|
"scdaemon.conf", "dirmngr.conf",
|
|
"gpg.conf", "gpgsm.conf" };
|
|
static const char *envvars[] = { "PATH",
|
|
"http_proxy", "HTTP_PROXY",
|
|
"https_proxy", "HTTPS_PROXY",
|
|
"LD_LIBRARY_PATH", "LD_PRELOAD",
|
|
"LD_AUDIT", "LD_ORIGIN_PATH" };
|
|
gpg_error_t err;
|
|
int idx;
|
|
char *fname;
|
|
gnupg_dir_t dir;
|
|
gnupg_dirent_t dir_entry;
|
|
size_t n;
|
|
int any, anywarn;
|
|
strlist_t list = NULL;
|
|
strlist_t sl;
|
|
const char *s;
|
|
int got_gpgconfconf = 0;
|
|
|
|
es_fprintf (outfp, "# gpgconf -X invoked %s%*s-*- org -*-\n\n",
|
|
isotimestamp (time (NULL)), 28, "");
|
|
es_fprintf (outfp, "* General information\n");
|
|
es_fprintf (outfp, "** Versions\n");
|
|
show_version_gnupg (outfp, " ");
|
|
es_fprintf (outfp, " Libgcrypt %s\n", gcry_check_version (NULL));
|
|
es_fprintf (outfp, " GpgRT %s\n", gpg_error_check_version (NULL));
|
|
#ifdef HAVE_W32_SYSTEM
|
|
es_fprintf (outfp, " Codepages:");
|
|
if (GetConsoleCP () != GetConsoleOutputCP ())
|
|
es_fprintf (outfp, " %u/%u", GetConsoleCP (), GetConsoleOutputCP ());
|
|
else
|
|
es_fprintf (outfp, " %u", GetConsoleCP ());
|
|
es_fprintf (outfp, " %u", GetACP ());
|
|
es_fprintf (outfp, " %u\n", GetOEMCP ());
|
|
#endif
|
|
es_fprintf (outfp, "\n\n");
|
|
|
|
es_fprintf (outfp, "** Directories\n");
|
|
list_dirs (outfp, NULL, 1);
|
|
es_fprintf (outfp, "\n");
|
|
|
|
es_fprintf (outfp, "** Environment\n#+begin_example\n");
|
|
for (idx=0; idx < DIM(envvars); idx++)
|
|
if ((s = getenv (envvars[idx])))
|
|
es_fprintf (outfp, "%s=%s\n", envvars[idx], s);
|
|
es_fprintf (outfp, "#+end_example\n");
|
|
|
|
es_fprintf (outfp, "* Config files\n");
|
|
fname = make_filename (gnupg_sysconfdir (), "gpgconf.conf", NULL);
|
|
if (!gnupg_access (fname, F_OK))
|
|
{
|
|
got_gpgconfconf = 1;
|
|
show_configs_one_file (fname, 1, outfp, &list);
|
|
es_fprintf (outfp, "\n");
|
|
}
|
|
xfree (fname);
|
|
|
|
for (idx = 0; idx < DIM (names); idx++)
|
|
{
|
|
fname = make_filename (gnupg_sysconfdir (), names[idx], NULL);
|
|
show_configs_one_file (fname, 1, outfp, &list);
|
|
xfree (fname);
|
|
fname = make_filename (gnupg_homedir (), names[idx], NULL);
|
|
show_configs_one_file (fname, 0, outfp, &list);
|
|
xfree (fname);
|
|
es_fprintf (outfp, "\n");
|
|
}
|
|
|
|
/* Print the encountered registry values and envvars. */
|
|
es_fprintf (outfp, "* Other info\n");
|
|
if (list)
|
|
{
|
|
any = 0;
|
|
for (sl = list; sl; sl = sl->next)
|
|
if (!(sl->flags & 1))
|
|
{
|
|
if (!any)
|
|
{
|
|
any = 1;
|
|
es_fprintf (outfp,
|
|
"** List of encountered environment variables\n"
|
|
"#+begin_example\n");
|
|
}
|
|
if ((s = getenv (sl->d)))
|
|
es_fprintf (outfp, " %-12s ->%s<-\n", sl->d, s);
|
|
else
|
|
es_fprintf (outfp, " %-12s [not set]\n", sl->d);
|
|
}
|
|
if (any)
|
|
es_fprintf (outfp, "#+end_example\n");
|
|
}
|
|
|
|
#ifdef HAVE_W32_SYSTEM
|
|
es_fprintf (outfp, "** Registry entries\n");
|
|
es_fprintf (outfp, "#+begin_example\n");
|
|
any = 0;
|
|
if (list)
|
|
{
|
|
for (sl = list; sl; sl = sl->next)
|
|
if ((sl->flags & 1))
|
|
{
|
|
char *p;
|
|
int from_hklm;
|
|
|
|
if (!any)
|
|
{
|
|
any = 1;
|
|
es_fprintf (outfp, "Encountered in config files:\n");
|
|
}
|
|
if ((p = read_w32_reg_string (sl->d, &from_hklm)))
|
|
es_fprintf (outfp, " %s ->%s<-%s\n", sl->d, p,
|
|
from_hklm? " [hklm]":"");
|
|
else
|
|
es_fprintf (outfp, " %s [not set]\n", sl->d);
|
|
xfree (p);
|
|
}
|
|
}
|
|
show_other_registry_entries (outfp);
|
|
show_registry_entries_from_file (outfp);
|
|
es_fprintf (outfp, "#+end_example\n");
|
|
#endif /*HAVE_W32_SYSTEM*/
|
|
|
|
free_strlist (list);
|
|
|
|
/* Additional warning. */
|
|
anywarn = 0;
|
|
if (got_gpgconfconf)
|
|
{
|
|
anywarn = 1;
|
|
es_fprintf (outfp, "* Warnings\n");
|
|
es_fprintf (outfp,
|
|
"- Legacy config file \"gpgconf.conf\" found\n");
|
|
}
|
|
|
|
/* Check for uncommon files in the home directory. */
|
|
dir = gnupg_opendir (gnupg_homedir ());
|
|
if (!dir)
|
|
{
|
|
err = gpg_error_from_syserror ();
|
|
log_error ("error reading directory \"%s\": %s\n",
|
|
gnupg_homedir (), gpg_strerror (err));
|
|
return;
|
|
}
|
|
|
|
any = 0;
|
|
while ((dir_entry = gnupg_readdir (dir)))
|
|
{
|
|
for (idx = 0; idx < DIM (names); idx++)
|
|
{
|
|
n = strlen (names[idx]);
|
|
if (!ascii_strncasecmp (dir_entry->d_name, names[idx], n)
|
|
&& dir_entry->d_name[n] == '-'
|
|
&& ascii_strncasecmp (dir_entry->d_name, "gpg.conf-1", 10))
|
|
{
|
|
if (!anywarn)
|
|
{
|
|
anywarn = 1;
|
|
es_fprintf (outfp, "* Warnings\n");
|
|
}
|
|
if (!any)
|
|
{
|
|
any = 1;
|
|
es_fprintf (outfp,
|
|
"- Suspicious files in \"%s\":\n",
|
|
gnupg_homedir ());
|
|
}
|
|
es_fprintf (outfp, " - %s\n", dir_entry->d_name);
|
|
}
|
|
}
|
|
}
|
|
gnupg_closedir (dir);
|
|
es_fprintf (outfp, "# eof #\n");
|
|
}
|